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IN THE CLAIMS 

1 . (Currently Amended) A public-key certificate using system for using a public key 
certificate which functions, in association with digital signature data of a certificate authority 
added thereto, as a certificate of a public key for encryption processing, said system comprising: 

an identification request device for generating a pair of the public key and a private key 
for a user who inputs sampling information that serves as person identification data of a person 
requesting the public key certificate, and sending the public key, the private key and the 
sampling information to a person identification certificate authority; 

the person identification certificate authority for executing a person authentication by 
comparing the sampling information against a template which serves as person identification 
data of the person requesting a the public key certificate, the template being obtained from a 
person identification certificate possessed by said person identification certificate authority^ 
generating a verification certificate based on an identifier of said requesting person when person 
authentication is established, updating information indicating a history of issuing verification 
certificates, and sending a user ID and the public key to a certificate authority; and 

the certificate authority for issuing the public key certificate for the requesting person 
corresponding to the received public key on condition that th e p e rson auth e ntication is 
e stablish e d . 

2. (Original) A public key certificate using system according to Claim 1, wherein said 
person identification certificate authority obtains sampling information which serves as person 
identification data of the person requesting a public key certificate, executes a person 
authentication by comparing the sampling information against a template obtained from the 
person identification certificate, and notifies said certificate authority of a success of the person 
authentication, said certificate authority issuing a public key certificate for the requesting person 
in response thereto. 

3. (Original) A public key certificate using system according to Claim 1, wherein said 
person identification certificate authority executes a mutual authentication with said certificate 
authority on condition that the person authentication is established on the basis of the person 
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identification certificate of the person requesting a public key certificate, and transmits a public 
key of the person requesting a public key certificate to said certificate authority on condition that 
the mutual authentication is established, said certificate authority issuing a public key certificate 
associated with the public key received. 

4. (Original) A public key certificate using system according to Claim 1, wherein the 
public key certificate issued by said certificate authority is a one-time public key certificate 
which is effective only for a single processing session involving use of an associated public key, 
based on the person authentication on the basis of the person identification certificate. 

5. (Original) A public key certificate using system according to Claim 1 , wherein each 
of said person identification certificate authority and said certificate authority is implemented by 
a third party which is not in association with a user of the public key certificate and the person 
identification certificate. 

6. (Original) A public key certificate using system according to Claim 1, further 
comprising an authentication requesting device for requesting the person authentication, 

wherein the person authentication is executed on the basis of user-entered sampling 
information transmitted from said authentication requesting device to said person identification 
certificate authority, the transmission of the user-entered sampling information being executed 
on condition that a mutual authentication is established between said authentication requesting 
device and said person identification certificate authority. 

7. (Original) A public key certificate using system according to Claim 1, further 
comprising a user device for issuing a service request to a service provider, 

wherein said user device transmits user-entered sampling information to said person 
identification certificate authority, said person identification certificate authority executes the 
person authentication by comparing the sampling information against the template obtained from 
the person identification certificate, said certificate authority issues a public key certificate for 
the user to said user device on condition that the person authentication is established, and said 
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user device, upon receiving the public key certificate, issues a service request including the 
public key certificate and transmits the service request to said service provider. 

8. (Original) A public key certificate using system according to Claim 1, further 
comprising a user device comprising storage means, used by the person requesting a public key 
certificate, 

wherein said certificate authority issues the public key certificate to said user device, the 
public key certificate being stored in said storage means, and said user device deletes the public 
key certificate upon completion of a processing session involving use of the public key 
certificate stored in said storage means. 

9. (Original) A public key certificate using system according to Claim 1, further 
comprising a user device comprising storage means, used by the person requesting a public key 
certificate, 

wherein said certificate authority issues the public key certificate to said user device, the 
public key certificate being stored in said storage means, and said user device deletes the public 
key certificate, and a public key and a private key associated with the public key certificate, upon 
completion of a processing session involving use of the public key certificate stored in said 
storage means. 

10. (Original) A public key certificate using system according to Claim 1, wherein the 
template comprises personal biometric information such as fingerprint information, retina pattern 
information, iris pattern information, voice print information, and handwriting information, non- 
biometric information such as a seal, a passport, a driver's license, and a card, any combination 
of two or more biometric or non-biometric information items, or any combination of one or more 
biometric or non-biometric information items with a password. 

1 1 . (Currently Amended) A public-key certificate using method for using a public 
key certificate which functions, in association with digital signature data of a certificate authority 
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added thereto, as a certificate of a public key for encryption processing, said method comprising 
the steps of: 

generating, at an identification request device, a pair of the public key and a private key 
for a user who inputs sampling information that serves as person identification data of a person 
requesting the public key certificate; 

sending the public key, the private key and the sampling information to a person 
identification certificate authority; 

executing, at the person identification certificate authority, a person authentication by 
comparing the sampling information against a template which serves as person identification 
data of the person requesting a the public key certificate, the template being obtained from a 
person identification certificate possessed by said person identification certificate authority; 

generating a verification certificate based on an identifier of said requesting person when 
person authentication is established; 

updating information indicating a history of issuing verification certificates; 

sending a user ID and said public to a certificate authority; and 

issuing, at the certificate authority, the public key certificate for the requesting person 
corresponding to the received public key on condition that th e person authentication is 
e stablish e d . 

12. (Original) A public key certificate using method according to Claim 11, wherein said 
person identification certificate authority obtains sampling information which serves as person 
identification data of the person requesting a public key certificate, executes a person 
authentication by comparing the sampling information against a template obtained from the 
person identification certificate, and notifies said certificate authority of a success of the person 
authentication, said certificate authority issuing a public key certificate for the requesting person 
in response thereto. 

13. (Original) A public key certificate using method according to Claim 11, wherein said 
person identification certificate authority executes a mutual authentication with said certificate 
authority on condition that the person authentication is established on the basis of the person 
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identification certificate of the person requesting a public key certificate, and transmits a public 
key of the person requesting a public key certificate to said certificate authority on condition that 
the mutual authentication is established, said certificate authority issuing a public key certificate 
associated with the public key received. 

14. (Original) A public key certificate using method according to Claim 11, wherein the 
public key certificate issued by said certificate authority is a one-time public key certificate 
which is effective only for a single processing session involving use of an associated public key, 
based on the person authentication on the basis of the person identification certificate. 

15. (Original) A public key certificate using method according to Claim 11, wherein 
each of said person identification certificate authority and said certificate authority is 
implemented by a third party which is not in association with a user of the public key certificate 
and the person identification certificate. 

16. (Original) A public key certificate using method according to Claim 11, further 
comprising the step of transmitting user-entered sampling information from an authentication 
requesting device to said person identification certificate authority on condition that a mutual 
authentication is established between said authentication requesting device and said person 
identification certificate authority, the person authentication being executed on the basis of the 
user-entered sampling information. 

17. (Original) A public key certificate using method according to Claim 11, further 
comprising the step of transmitting user-entered sampling information from a user device to said 
person identification certificate authority, 

wherein said person identification certificate authority executes the person authentication 
by comparing the user-entered sampling information against the template obtained from the 
person identification certificate, 

said certificate authority issues a public key certificate for the user to said user device on 
condition that the person authentication is established; and 
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said user device, upon receiving the public key certificate, issues a service request 
including the public key certificate and transmits the service request to a service provider. 

18. (Original) A public key certificate using method according to Claim 11, 
wherein said certificate authority issues the public key certificate to a user device 

comprising storage means, used by the person requesting a public key certificate, the public key 
certificate being stored in said storage means, and said user device deletes the public key 
certificate upon completion of a processing session involving use of the public key certificate 
stored in said storage means. 

19. (Original) A public key certificate using method according to Claim 11, 
wherein said certificate authority issues the public key certificate to a user device 

comprising storage means, used by the person requesting a public key certificate, the public key 
certificate being stored in said storage means, and said user device deletes the public key 
certificate, and a public key and a private key associated with the public key certificate, upon 
completion of a processing session involving use of the public key certificate stored in said 
storage means. 

20. (Currently Amended) An information processing apparatus comprising: 
means for generating a pair of a public key and a private key for a user who inputs 

sampling information that serves as person identification data of a person requesting a public key 
certificate; and sending the public key, the private key and the sampling information to a person 
identification certificate authority; 

means for executing a person authentication by comparing he sampling information 
against a template which serves as person identification data of the person requesting the public 
key certificate, the template being obtained from a person identification certificate possessed by 
the person identification certificate authority, generating a verification certificate based on an 
identifier of said requesting person when person authentication is established, updating 
information indicating a history of issuing verification certificates, and sending a user ID and 
said public to a certificate authority; 
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means for issuing the public key certificate for the requesting person corresponding to the 
received public key on condition that th e p e rson auth e ntication is establish e d ; 
means for storing the public key certificate; and 

means for deleting the public key certificate upon completion of a processing session 
involving use of the public key certificate stored in said storage means. 

21 . (Original) An information processing apparatus according to Claim 20, wherein said 
deleting means deletes the public key certificate, and a public key and a private key associated 
with the public key certificate, upon completion of a processing session involving use of the 
public key certificate stored in said storage means. 

' 22. (Currently Amended) A program providing medium which provides a computer 
program for executing on a computer system a data processing for using a public key certificate 
which functions, in association with digital signature data of a certificate authority added thereto, 
as a certificate of a public key for encryption processing, said computer program comprising the 
steps of: 

generating, at an identification request device, a pair of the public key and a private key 
for a user who inputs sampling information that serves as person identification data of a person 
requesting the public key certificate; 

sending the public key, the private key and the sampling information to a person 
identification certificate authority; 

executing, at the person identification certificate authority, a person authentication by 
comparing the sampling information against a template which serves as person identification 
data of the person requesting a the public key certificate, the template being obtained from a 
person identification certificate possessed by said person identification certificate authority; 

generating a verification certificate based on an identifier of said requesting person when 
person authentication is established; 

updating information indicating a history of issuing verification certificates; 

sending a user ID and said public to a certificate authority; and 
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issuing, at the certificate authority, a the public key certificate for the requesting person 
corresponding to the received public key on condition that th e p e rson auth e ntication is 
e stablish e d .. 



